Rounding pointers: type safe capabilities with C++ meta programming

@inproceedings{Warg2011RoundingPT,
  title={Rounding pointers: type safe capabilities with C++ meta programming},
  author={Alexander Warg and Adam Lackorzynski},
  booktitle={PLOS@SOSP},
  year={2011}
}
Recent trends in secure operating systems indicate that an object-capability system is the security model with pre-eminent characteristics and practicality. Unlike traditional operating systems, which use a single global name space, object-capability systems name objects per protection domain. This allows a fine-grained isolation of the domains and follows the principle of least authority. Programming in such an environment differs considerably from traditional programming models. The fine… CONTINUE READING